WE CLAIM: 



1. A system for providing application services in 
a computing environment having both user-mode processes 
and privileged-mode processes, the system comprising: 

an agent executing in privileged mode and exposing 
an interface to user-mode processes; 

a user-mode component having an interface configured 
to accesses the agent's exposed interface; and 

a configuration component specifying a list of 
installable code components that are authorized for 
installation, wherein the agent will only execute 
privilege mode functions in response to accesses by the 
user-mode code component when the installable code 
component is represented on the list. 

2 . The system of claim 1 wherein the configuration 
component includes a digital signature. 

3 . The system of claim 1 further comprising a user 
interface implemented within the user-mode component. 

4 . The system of claim 1 wherein the user-mode 
component comprises an application software installation 
wizard . 

5. The system of claim 1 wherein the agent 
comprises methods for creating an instance of an 
installation program in accordance with a definition 
supplied in the configuration component. 

6. The system of claim 1 wherein the agent 
behavior is configured by the contents of the 
configuration component . 
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7 . The system of claim 2 further comprising 
methods within the agent for authenticating the digital 
signature . 

8. The system of claim 1 further comprising: 
specifications within the configuration component 

specifying a list of objects that are permitted, to be 
created by the agent; and 
5 methods within the agent that are responsive to the 

list of objects to prevent creation of any object unless 
it is specified on the list of objects. 

9. The system of claim 1 further comprising: 
specifications within the configuration component 

specifying instructions for installing program components 
into an operating system. 

10. A method for managing privileges in a computing 
environment having both user-mode processes and 
privileged-mode processes, the method comprising: 

executing an agent in privileged mode; 
5 exposing an interface of the agent to user-mode 

processes ; 

accessing the agent's exposed interface using a 
user-mode component ; 

specifying a list of authorized code components in a 
10 configuration file; 

authenticating that the configuration file comes 
from a trusted source; and 

executing privileged-mode processes specified by the 
configuration file using the agent, wherein the agent 
15 will only execute privileged-mode processes in response 
to access by the user-mode code component when the 
configuration file is authenticated as coming from a 
trusted source. 
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11. The method 
specifying a digital 
file. 



of claim 10 further comprising 
signature within the configuration 



12 The method of claim 10 further comprising 
implementing a user interface implemented within the 
user -mode component . 

13. The method of claim 10 further comprising 
creating an instance of a software application program in 
accordance with a definition supplied in the 
configuration file . 

14 . The method of claim 10 further comprising 
extending the agent * s program behavior according to the 
contents of the configuration file. 

15. The system of claim 11 further comprising 
authenticating the digital signature using the agent. 

16. The system of claim 10 further comprising: 
specifying a list of obj ects within the 

configuration file that are permitted to be created by 
the agent ; and 

in response to the list of objects, preventing 
creation of any object unless it is specified on the list 
of objects. 

17. The system of claim 10 further comprising: 
specifying instructions within the configuration 

file for installing program components into the operating 
system. 

18. An application installation agent executing in 
a privileged mode in a computing environment having both 
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user-mode processes and privileged-mode processes, the 
agent comprising: 

an interface for receiving a message specifying a 
configuration file ; 

a set of methods for accessing the configuration 

file; 

a set of methods for authenticating the source of 
the configuration file; and 

a set of methods for executing privileged-mode 
processes specified in the configuration file in response 
to authenticating the source of the configuration file. 

19. The agent of claim 18 further comprising a set 
of methods for determining whether specific privileged- 
mode processes are permitted by the configuration file. 
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